Your company has a datacenter in Los Angeles.
The datacenter contains a private cloud that is managed by using a System Center 2012
infrastructure.
The infrastructure has the System Center 2012 Service Manager Self-Service Portal installed.
You create a new service offering.
You need to ensure that only three users named Admin1, Admin2, and Admin3 can access the
service offering.
What should you do?
A.
Add the service offering and the request offering to a Service Manager group, and then create a
Run As Account.
B.
Add the Admin1, Admin2, and Admin3 configuration items to a Service Manager group, and then
create a Run As Account.
C.
Add the service offering and the request offering to a Service Manager group, and then create a
User Role.
D.
Add the Admin1, Admin2, and Admin3 configuration items to a Service Manager group, and then
create a User Role.
Explanation:
With Role based security scoping in SCSM there is the possibility to configure a controlled
environment for different service roles.
A SCSM role profile is a configuration set to define access to objects, views in the console, operations
they can perform and members of the role (AD User/Group).
SCSM components of a User role are:
The security scope: Is the security boundary in SCSM.
Boundaries can be set on Group/queue, Class, Property & relationships.
UI filter scope: This filter is for defining what an operator can see in the SCSM console.
Limiting the options visible in the console improves the usability.
UI filters can be set on console tasks, templates and views.
User role profile: SCSM includes some predefined user profiles who include a set of allowed
operations with a class/property/relationship scope over objects.
User Assignment: The members of the user role in SCSM.
This can be set for users or groups.
(Always recommended to use groups)
http://scug.be/scsm/2010/03/21/service-manager-role-based-security-scoping
No.
You use a catalog group to group SCSM items. A user role contains users or groups (from AD).
In this case the correct answer is C.
“Service Offering/Request Permissions: To configure which service offerings and request show on the web portal you need to create a catalog group containing all the Service Offerings and Requests that you want a specific group to see. After you have the catalog group you need to create a User Role to assign the users and groups that you want to see the set of Service Offerings and Requests in the catalog group. “